8 files changed, 111 insertions, 66 deletions
diff --git a/kernel/capability.c b/kernel/capability.c
index bf0c734d0c12..32a80e08ff4b 100644
--- a/kernel/capability.c
+++ b/kernel/capability.c
@@ -399,3 +399,15 @@ bool task_ns_capable(struct task_struct *t, int cap)
        return ns_capable(task_cred_xxx(t, user)->user_ns, cap);
 }
 EXPORT_SYMBOL(task_ns_capable);
+/**
+ * nsown_capable - Check superior capability to one's own user_ns
+ * @cap: The capability in question
+ *
+ * Return true if the current task has the given superior capability
+ * targeted at its own user namespace.
+ */
+bool nsown_capable(int cap)
+{
+        return ns_capable(current_user_ns(), cap);
+}
diff --git a/kernel/cred.c b/kernel/cred.c
index 5557b55048df..8093c16b84b1 100644
--- a/kernel/cred.c
+++ b/kernel/cred.c
@@ -54,6 +54,7 @@ struct cred init_cred = {
        .cap_effective          = CAP_INIT_EFF_SET,
        .cap_bset               = CAP_INIT_BSET,
        .user                   = INIT_USER,
+        .user_ns                = &init_user_ns,
        .group_info             = &init_groups,
 #ifdef CONFIG_KEYS
        .tgcred                 = &init_tgcred,
@@ -410,6 +411,11 @@ int copy_creds(struct task_struct *p, unsigned long clone_flags)
                        goto error_put;
        }
+        /* cache user_ns in cred.  Doesn't need a refcount because it will
+         * stay pinned by cred->user
+         */
+        new->user_ns = new->user->user_ns;
 #ifdef CONFIG_KEYS
        /* new threads get their own thread keyrings if their parent already
         * had one */
@@ -741,12 +747,6 @@ int set_create_files_as(struct cred *new, struct inode *inode)
 }
 EXPORT_SYMBOL(set_create_files_as);
-struct user_namespace *current_user_ns(void)
-{
-        return _current_user_ns();
-}
-EXPORT_SYMBOL(current_user_ns);
 #ifdef CONFIG_DEBUG_CREDENTIALS
 bool creds_are_invalid(const struct cred *cred)
diff --git a/kernel/module.c b/kernel/module.c
index d5938a5c19c4..22879725678d 100644
--- a/kernel/module.c
+++ b/kernel/module.c
@@ -57,6 +57,7 @@
 #include <linux/kmemleak.h>
 #include <linux/jump_label.h>
 #include <linux/pfn.h>
+#include <linux/bsearch.h>
 #define CREATE_TRACE_POINTS
 #include <trace/events/module.h>
@@ -240,23 +241,24 @@ static bool each_symbol_in_section(const struct symsearch *arr,
                                   struct module *owner,
                                   bool (*fn)(const struct symsearch *syms,
                                              struct module *owner,
-                                              unsigned int symnum, void *data),
+                                              void *data),
                                   void *data)
 {
-        unsigned int i, j;
+        unsigned int j;
        for (j = 0; j < arrsize; j++) {
-                for (i = 0; i < arr[j].stop - arr[j].start; i++)
+                if (fn(&arr[j], owner, data))
-                        if (fn(&arr[j], owner, i, data))
+                        return true;
-                                return true;
        }
        return false;
 }
 /* Returns true as soon as fn returns true, otherwise false. */
-bool each_symbol(bool (*fn)(const struct symsearch *arr, struct module *owner,
+bool each_symbol_section(bool (*fn)(const struct symsearch *arr,
-                            unsigned int symnum, void *data), void *data)
+                                    struct module *owner,
+                                    void *data),
+                         void *data)
 {
        struct module *mod;
        static const struct symsearch arr[] = {
@@ -309,7 +311,7 @@ bool each_symbol(bool (*fn)(const struct symsearch *arr, struct module *owner,
        }
        return false;
 }
-EXPORT_SYMBOL_GPL(each_symbol);
+EXPORT_SYMBOL_GPL(each_symbol_section);
 struct find_symbol_arg {
        /* Input */
@@ -323,15 +325,12 @@ struct find_symbol_arg {
        const struct kernel_symbol *sym;
 };
-static bool find_symbol_in_section(const struct symsearch *syms,
+static bool check_symbol(const struct symsearch *syms,
-                                   struct module *owner,
+                                 struct module *owner,
-                                   unsigned int symnum, void *data)
+                                 unsigned int symnum, void *data)
 {
        struct find_symbol_arg *fsa = data;
-        if (strcmp(syms->start[symnum].name, fsa->name) != 0)
-                return false;
        if (!fsa->gplok) {
                if (syms->licence == GPL_ONLY)
                        return false;
@@ -365,6 +364,30 @@ static bool find_symbol_in_section(const struct symsearch *syms,
        return true;
 }
+static int cmp_name(const void *va, const void *vb)
+{
+        const char *a;
+        const struct kernel_symbol *b;
+        a = va; b = vb;
+        return strcmp(a, b->name);
+}
+static bool find_symbol_in_section(const struct symsearch *syms,
+                                   struct module *owner,
+                                   void *data)
+{
+        struct find_symbol_arg *fsa = data;
+        struct kernel_symbol *sym;
+        sym = bsearch(fsa->name, syms->start, syms->stop - syms->start,
+                        sizeof(struct kernel_symbol), cmp_name);
+        if (sym != NULL && check_symbol(syms, owner, sym - syms->start, data))
+                return true;
+        return false;
+}
 /* Find a symbol and return it, along with, (optional) crc and
 * (optional) module which owns it.  Needs preempt disabled or module_mutex. */
 const struct kernel_symbol *find_symbol(const char *name,
@@ -379,7 +402,7 @@ const struct kernel_symbol *find_symbol(const char *name,
        fsa.gplok = gplok;
        fsa.warn = warn;
-        if (each_symbol(find_symbol_in_section, &fsa)) {
+        if (each_symbol_section(find_symbol_in_section, &fsa)) {
                if (owner)
                        *owner = fsa.owner;
                if (crc)
@@ -1607,27 +1630,28 @@ static void set_section_ro_nx(void *base,
        }
 }
-/* Setting memory back to RW+NX before releasing it */
+static void unset_module_core_ro_nx(struct module *mod)
-void unset_section_ro_nx(struct module *mod, void *module_region)
 {
-        unsigned long total_pages;
+        set_page_attributes(mod->module_core + mod->core_text_size,
+                mod->module_core + mod->core_size,
-        if (mod->module_core == module_region) {
+                set_memory_x);
-                /* Set core as NX+RW */
+        set_page_attributes(mod->module_core,
-                total_pages = MOD_NUMBER_OF_PAGES(mod->module_core, mod->core_size);
+                mod->module_core + mod->core_ro_size,
-                set_memory_nx((unsigned long)mod->module_core, total_pages);
+                set_memory_rw);
-                set_memory_rw((unsigned long)mod->module_core, total_pages);
+}
-        } else if (mod->module_init == module_region) {
+static void unset_module_init_ro_nx(struct module *mod)
-                /* Set init as NX+RW */
+{
-                total_pages = MOD_NUMBER_OF_PAGES(mod->module_init, mod->init_size);
+        set_page_attributes(mod->module_init + mod->init_text_size,
-                set_memory_nx((unsigned long)mod->module_init, total_pages);
+                mod->module_init + mod->init_size,
-                set_memory_rw((unsigned long)mod->module_init, total_pages);
+                set_memory_x);
-        }
+        set_page_attributes(mod->module_init,
+                mod->module_init + mod->init_ro_size,
+                set_memory_rw);
 }
 /* Iterate through all modules and set each module's text as RW */
-void set_all_modules_text_rw()
+void set_all_modules_text_rw(void)
 {
        struct module *mod;
@@ -1648,7 +1672,7 @@ void set_all_modules_text_rw()
 }
 /* Iterate through all modules and set each module's text as RO */
-void set_all_modules_text_ro()
+void set_all_modules_text_ro(void)
 {
        struct module *mod;
@@ -1669,7 +1693,8 @@ void set_all_modules_text_ro()
 }
 #else
 static inline void set_section_ro_nx(void *base, unsigned long text_size, unsigned long ro_size, unsigned long total_size) { }
-static inline void unset_section_ro_nx(struct module *mod, void *module_region) { }
+static void unset_module_core_ro_nx(struct module *mod) { }
+static void unset_module_init_ro_nx(struct module *mod) { }
 #endif
 /* Free a module, remove from lists, etc. */
@@ -1696,7 +1721,7 @@ static void free_module(struct module *mod)
        destroy_params(mod->kp, mod->num_kp);
        /* This may be NULL, but that's OK */
-        unset_section_ro_nx(mod, mod->module_init);
+        unset_module_init_ro_nx(mod);
        module_free(mod, mod->module_init);
        kfree(mod->args);
        percpu_modfree(mod);
@@ -1705,7 +1730,7 @@ static void free_module(struct module *mod)
        lockdep_free_key_range(mod->module_core, mod->core_size);
        /* Finally, free the core (containing the module structure) */
-        unset_section_ro_nx(mod, mod->module_core);
+        unset_module_core_ro_nx(mod);
        module_free(mod, mod->module_core);
 #ifdef CONFIG_MPU
@@ -2030,11 +2055,8 @@ static const struct kernel_symbol *lookup_symbol(const char *name,
        const struct kernel_symbol *start,
        const struct kernel_symbol *stop)
 {
-        const struct kernel_symbol *ks = start;
+        return bsearch(name, start, stop - start,
-        for (; ks < stop; ks++)
+                        sizeof(struct kernel_symbol), cmp_name);
-                if (strcmp(ks->name, name) == 0)
-                        return ks;
-        return NULL;
 }
 static int is_exported(const char *name, unsigned long value,
@@ -2931,10 +2953,11 @@ SYSCALL_DEFINE3(init_module, void __user *, umod,
        mod->symtab = mod->core_symtab;
        mod->strtab = mod->core_strtab;
 #endif
-        unset_section_ro_nx(mod, mod->module_init);
+        unset_module_init_ro_nx(mod);
        module_free(mod, mod->module_init);
        mod->module_init = NULL;
        mod->init_size = 0;
+        mod->init_ro_size = 0;
        mod->init_text_size = 0;
        mutex_unlock(&module_mutex);
diff --git a/kernel/params.c b/kernel/params.c
index 7ab388a48a2e..ed72e1330862 100644
--- a/kernel/params.c
+++ b/kernel/params.c
@@ -297,21 +297,15 @@ EXPORT_SYMBOL(param_ops_charp);
 int param_set_bool(const char *val, const struct kernel_param *kp)
 {
        bool v;
+        int ret;
        /* No equals means "set"... */
        if (!val) val = "1";
        /* One of =[yYnN01] */
-        switch (val[0]) {
+        ret = strtobool(val, &v);
-        case 'y': case 'Y': case '1':
+        if (ret)
-                v = true;
+                return ret;
-                break;
-        case 'n': case 'N': case '0':
-                v = false;
-                break;
-        default:
-                return -EINVAL;
-        }
        if (kp->flags & KPARAM_ISBOOL)
                *(bool *)kp->arg = v;
@@ -821,15 +815,18 @@ ssize_t __modver_version_show(struct module_attribute *mattr,
        return sprintf(buf, "%s\n", vattr->version);
 }
-extern struct module_version_attribute __start___modver[], __stop___modver[];
+extern const struct module_version_attribute *__start___modver[];
+extern const struct module_version_attribute *__stop___modver[];
 static void __init version_sysfs_builtin(void)
 {
-        const struct module_version_attribute *vattr;
+        const struct module_version_attribute **p;
        struct module_kobject *mk;
        int err;
-        for (vattr = __start___modver; vattr < __stop___modver; vattr++) {
+        for (p = __start___modver; p < __stop___modver; p++) {
+                const struct module_version_attribute *vattr = *p;
                mk = locate_module_kobject(vattr->module_name);
                if (mk) {
                        err = sysfs_create_file(&mk->kobj, &vattr->mattr.attr);
diff --git a/kernel/power/suspend.c b/kernel/power/suspend.c
index 8935369d503a..6275970b2189 100644
--- a/kernel/power/suspend.c
+++ b/kernel/power/suspend.c
@@ -216,7 +216,6 @@ int suspend_devices_and_enter(suspend_state_t state)
                        goto Close;
        }
        suspend_console();
-        pm_restrict_gfp_mask();
        suspend_test_start();
        error = dpm_suspend_start(PMSG_SUSPEND);
        if (error) {
@@ -233,7 +232,6 @@ int suspend_devices_and_enter(suspend_state_t state)
        suspend_test_start();
        dpm_resume_end(PMSG_RESUME);
        suspend_test_finish("resume devices");
-        pm_restore_gfp_mask();
        resume_console();
 Close:
        if (suspend_ops->end)
@@ -294,7 +292,9 @@ int enter_state(suspend_state_t state)
                goto Finish;
        pr_debug("PM: Entering %s sleep\n", pm_states[state]);
+        pm_restrict_gfp_mask();
        error = suspend_devices_and_enter(state);
+        pm_restore_gfp_mask();
 Finish:
        pr_debug("PM: Finishing wakeup.\n");
diff --git a/kernel/power/user.c b/kernel/power/user.c
index c36c3b9e8a84..7d02d33be699 100644
--- a/kernel/power/user.c
+++ b/kernel/power/user.c
@@ -135,8 +135,10 @@ static int snapshot_release(struct inode *inode, struct file *filp)
        free_basic_memory_bitmaps();
        data = filp->private_data;
        free_all_swap_pages(data->swap);
-        if (data->frozen)
+        if (data->frozen) {
+                pm_restore_gfp_mask();
                thaw_processes();
+        }
        pm_notifier_call_chain(data->mode == O_RDONLY ?
                        PM_POST_HIBERNATION : PM_POST_RESTORE);
        atomic_inc(&snapshot_device_available);
@@ -379,6 +381,7 @@ static long snapshot_ioctl(struct file *filp, unsigned int cmd,
                 * PM_HIBERNATION_PREPARE
                 */
                error = suspend_devices_and_enter(PM_SUSPEND_MEM);
+                data->ready = 0;
                break;
        case SNAPSHOT_PLATFORM_SUPPORT:
diff --git a/kernel/time/clocksource.c b/kernel/time/clocksource.c
index 6519cf62d9cd..0e17c10f8a9d 100644
--- a/kernel/time/clocksource.c
+++ b/kernel/time/clocksource.c
@@ -685,8 +685,8 @@ int __clocksource_register_scale(struct clocksource *cs, u32 scale, u32 freq)
        /* Add clocksource to the clcoksource list */
        mutex_lock(&clocksource_mutex);
        clocksource_enqueue(cs);
-        clocksource_select();
        clocksource_enqueue_watchdog(cs);
+        clocksource_select();
        mutex_unlock(&clocksource_mutex);
        return 0;
 }
@@ -706,8 +706,8 @@ int clocksource_register(struct clocksource *cs)
        mutex_lock(&clocksource_mutex);
        clocksource_enqueue(cs);
-        clocksource_select();
        clocksource_enqueue_watchdog(cs);
+        clocksource_select();
        mutex_unlock(&clocksource_mutex);
        return 0;
 }
diff --git a/kernel/time/tick-broadcast.c b/kernel/time/tick-broadcast.c
index da800ffa810c..723c7637e55a 100644
--- a/kernel/time/tick-broadcast.c
+++ b/kernel/time/tick-broadcast.c
@@ -522,10 +522,11 @@ static void tick_broadcast_init_next_event(struct cpumask *mask,
 */
 void tick_broadcast_setup_oneshot(struct clock_event_device *bc)
 {
+        int cpu = smp_processor_id();
        /* Set it up only once ! */
        if (bc->event_handler != tick_handle_oneshot_broadcast) {
                int was_periodic = bc->mode == CLOCK_EVT_MODE_PERIODIC;
-                int cpu = smp_processor_id();
                bc->event_handler = tick_handle_oneshot_broadcast;
                clockevents_set_mode(bc, CLOCK_EVT_MODE_ONESHOT);
@@ -551,6 +552,15 @@ void tick_broadcast_setup_oneshot(struct clock_event_device *bc)
                        tick_broadcast_set_event(tick_next_period, 1);
                } else
                        bc->next_event.tv64 = KTIME_MAX;
+        } else {
+                /*
+                 * The first cpu which switches to oneshot mode sets
+                 * the bit for all other cpus which are in the general
+                 * (periodic) broadcast mask. So the bit is set and
+                 * would prevent the first broadcast enter after this
+                 * to program the bc device.
+                 */
+                tick_broadcast_clear_oneshot(cpu);
        }
 }

diff --git a/kernel/capability.c b/kernel/capability.c index bf0c734d0c12..32a80e08ff4b 100644 --- a/kernel/capability.c +++ b/kernel/capability.c
@@ -399,3 +399,15 @@ bool task_ns_capable(struct task_struct *t, int cap)
399	return ns_capable(task_cred_xxx(t, user)->user_ns, cap);	399	return ns_capable(task_cred_xxx(t, user)->user_ns, cap);
400	}	400	}
401	EXPORT_SYMBOL(task_ns_capable);	401	EXPORT_SYMBOL(task_ns_capable);
		402
		403	/**
		404	* nsown_capable - Check superior capability to one's own user_ns
		405	* @cap: The capability in question
		406	*
		407	* Return true if the current task has the given superior capability
		408	* targeted at its own user namespace.
		409	*/
		410	bool nsown_capable(int cap)
		411	{
		412	return ns_capable(current_user_ns(), cap);
		413	}


diff --git a/kernel/cred.c b/kernel/cred.c index 5557b55048df..8093c16b84b1 100644 --- a/kernel/cred.c +++ b/kernel/cred.c
@@ -54,6 +54,7 @@ struct cred init_cred = {
54	.cap_effective = CAP_INIT_EFF_SET,	54	.cap_effective = CAP_INIT_EFF_SET,
55	.cap_bset = CAP_INIT_BSET,	55	.cap_bset = CAP_INIT_BSET,
56	.user = INIT_USER,	56	.user = INIT_USER,
		57	.user_ns = &init_user_ns,
57	.group_info = &init_groups,	58	.group_info = &init_groups,
58	#ifdef CONFIG_KEYS	59	#ifdef CONFIG_KEYS
59	.tgcred = &init_tgcred,	60	.tgcred = &init_tgcred,
@@ -410,6 +411,11 @@ int copy_creds(struct task_struct *p, unsigned long clone_flags)
410	goto error_put;	411	goto error_put;
411	}	412	}
412		413
		414	/* cache user_ns in cred. Doesn't need a refcount because it will
		415	* stay pinned by cred->user
		416	*/
		417	new->user_ns = new->user->user_ns;
		418
413	#ifdef CONFIG_KEYS	419	#ifdef CONFIG_KEYS
414	/* new threads get their own thread keyrings if their parent already	420	/* new threads get their own thread keyrings if their parent already
415	* had one */	421	* had one */
@@ -741,12 +747,6 @@ int set_create_files_as(struct cred new, struct inode inode)
741	}	747	}
742	EXPORT_SYMBOL(set_create_files_as);	748	EXPORT_SYMBOL(set_create_files_as);
743		749
744	struct user_namespace *current_user_ns(void)
745	{
746	return _current_user_ns();
747	}
748	EXPORT_SYMBOL(current_user_ns);
749
750	#ifdef CONFIG_DEBUG_CREDENTIALS	750	#ifdef CONFIG_DEBUG_CREDENTIALS
751		751
752	bool creds_are_invalid(const struct cred *cred)	752	bool creds_are_invalid(const struct cred *cred)


diff --git a/kernel/module.c b/kernel/module.c index d5938a5c19c4..22879725678d 100644 --- a/kernel/module.c +++ b/kernel/module.c
@@ -57,6 +57,7 @@
57	#include <linux/kmemleak.h>	57	#include <linux/kmemleak.h>
58	#include <linux/jump_label.h>	58	#include <linux/jump_label.h>
59	#include <linux/pfn.h>	59	#include <linux/pfn.h>
		60	#include <linux/bsearch.h>
60		61
61	#define CREATE_TRACE_POINTS	62	#define CREATE_TRACE_POINTS
62	#include <trace/events/module.h>	63	#include <trace/events/module.h>
@@ -240,23 +241,24 @@ static bool each_symbol_in_section(const struct symsearch *arr,
240	struct module *owner,	241	struct module *owner,
241	bool (fn)(const struct symsearch syms,	242	bool (fn)(const struct symsearch syms,
242	struct module *owner,	243	struct module *owner,
243	unsigned int symnum, void *data),	244	void *data),
244	void *data)	245	void *data)
245	{	246	{
246	unsigned int i, j;	247	unsigned int j;
247		248
248	for (j = 0; j < arrsize; j++) {	249	for (j = 0; j < arrsize; j++) {
249	for (i = 0; i < arr[j].stop - arr[j].start; i++)	250	if (fn(&arr[j], owner, data))
250	if (fn(&arr[j], owner, i, data))	251	return true;
251	return true;
252	}	252	}
253		253
254	return false;	254	return false;
255	}	255	}
256		256
257	/* Returns true as soon as fn returns true, otherwise false. */	257	/* Returns true as soon as fn returns true, otherwise false. */
258	bool each_symbol(bool (fn)(const struct symsearch arr, struct module *owner,	258	bool each_symbol_section(bool (fn)(const struct symsearch arr,
259	unsigned int symnum, void data), void data)	259	struct module *owner,
		260	void *data),
		261	void *data)
260	{	262	{
261	struct module *mod;	263	struct module *mod;
262	static const struct symsearch arr[] = {	264	static const struct symsearch arr[] = {
@@ -309,7 +311,7 @@ bool each_symbol(bool (fn)(const struct symsearch arr, struct module *owner,
309	}	311	}
310	return false;	312	return false;
311	}	313	}
312	EXPORT_SYMBOL_GPL(each_symbol);	314	EXPORT_SYMBOL_GPL(each_symbol_section);
313		315
314	struct find_symbol_arg {	316	struct find_symbol_arg {
315	/* Input */	317	/* Input */
@@ -323,15 +325,12 @@ struct find_symbol_arg {
323	const struct kernel_symbol *sym;	325	const struct kernel_symbol *sym;
324	};	326	};
325		327
326	static bool find_symbol_in_section(const struct symsearch *syms,	328	static bool check_symbol(const struct symsearch *syms,
327	struct module *owner,	329	struct module *owner,
328	unsigned int symnum, void *data)	330	unsigned int symnum, void *data)
329	{	331	{
330	struct find_symbol_arg *fsa = data;	332	struct find_symbol_arg *fsa = data;
331		333
332	if (strcmp(syms->start[symnum].name, fsa->name) != 0)
333	return false;
334
335	if (!fsa->gplok) {	334	if (!fsa->gplok) {
336	if (syms->licence == GPL_ONLY)	335	if (syms->licence == GPL_ONLY)
337	return false;	336	return false;
@@ -365,6 +364,30 @@ static bool find_symbol_in_section(const struct symsearch *syms,
365	return true;	364	return true;
366	}	365	}
367		366
		367	static int cmp_name(const void va, const void vb)
		368	{
		369	const char *a;
		370	const struct kernel_symbol *b;
		371	a = va; b = vb;
		372	return strcmp(a, b->name);
		373	}
		374
		375	static bool find_symbol_in_section(const struct symsearch *syms,
		376	struct module *owner,
		377	void *data)
		378	{
		379	struct find_symbol_arg *fsa = data;
		380	struct kernel_symbol *sym;
		381
		382	sym = bsearch(fsa->name, syms->start, syms->stop - syms->start,
		383	sizeof(struct kernel_symbol), cmp_name);
		384
		385	if (sym != NULL && check_symbol(syms, owner, sym - syms->start, data))
		386	return true;
		387
		388	return false;
		389	}
		390
368	/* Find a symbol and return it, along with, (optional) crc and	391	/* Find a symbol and return it, along with, (optional) crc and
369	* (optional) module which owns it. Needs preempt disabled or module_mutex. */	392	* (optional) module which owns it. Needs preempt disabled or module_mutex. */
370	const struct kernel_symbol find_symbol(const char name,	393	const struct kernel_symbol find_symbol(const char name,
@@ -379,7 +402,7 @@ const struct kernel_symbol find_symbol(const char name,
379	fsa.gplok = gplok;	402	fsa.gplok = gplok;
380	fsa.warn = warn;	403	fsa.warn = warn;
381		404
382	if (each_symbol(find_symbol_in_section, &fsa)) {	405	if (each_symbol_section(find_symbol_in_section, &fsa)) {
383	if (owner)	406	if (owner)
384	*owner = fsa.owner;	407	*owner = fsa.owner;
385	if (crc)	408	if (crc)
@@ -1607,27 +1630,28 @@ static void set_section_ro_nx(void *base,
1607	}	1630	}
1608	}	1631	}
1609		1632
1610	/* Setting memory back to RW+NX before releasing it */	1633	static void unset_module_core_ro_nx(struct module *mod)
1611	void unset_section_ro_nx(struct module mod, void module_region)
1612	{	1634	{
1613	unsigned long total_pages;	1635	set_page_attributes(mod->module_core + mod->core_text_size,
1614		1636	mod->module_core + mod->core_size,
1615	if (mod->module_core == module_region) {	1637	set_memory_x);
1616	/* Set core as NX+RW */	1638	set_page_attributes(mod->module_core,
1617	total_pages = MOD_NUMBER_OF_PAGES(mod->module_core, mod->core_size);	1639	mod->module_core + mod->core_ro_size,
1618	set_memory_nx((unsigned long)mod->module_core, total_pages);	1640	set_memory_rw);
1619	set_memory_rw((unsigned long)mod->module_core, total_pages);	1641	}
1620		1642
1621	} else if (mod->module_init == module_region) {	1643	static void unset_module_init_ro_nx(struct module *mod)
1622	/* Set init as NX+RW */	1644	{
1623	total_pages = MOD_NUMBER_OF_PAGES(mod->module_init, mod->init_size);	1645	set_page_attributes(mod->module_init + mod->init_text_size,
1624	set_memory_nx((unsigned long)mod->module_init, total_pages);	1646	mod->module_init + mod->init_size,
1625	set_memory_rw((unsigned long)mod->module_init, total_pages);	1647	set_memory_x);
1626	}	1648	set_page_attributes(mod->module_init,
		1649	mod->module_init + mod->init_ro_size,
		1650	set_memory_rw);
1627	}	1651	}
1628		1652
1629	/* Iterate through all modules and set each module's text as RW */	1653	/* Iterate through all modules and set each module's text as RW */
1630	void set_all_modules_text_rw()	1654	void set_all_modules_text_rw(void)
1631	{	1655	{
1632	struct module *mod;	1656	struct module *mod;
1633		1657
@@ -1648,7 +1672,7 @@ void set_all_modules_text_rw()
1648	}	1672	}
1649		1673
1650	/* Iterate through all modules and set each module's text as RO */	1674	/* Iterate through all modules and set each module's text as RO */
1651	void set_all_modules_text_ro()	1675	void set_all_modules_text_ro(void)
1652	{	1676	{
1653	struct module *mod;	1677	struct module *mod;
1654		1678
@@ -1669,7 +1693,8 @@ void set_all_modules_text_ro()
1669	}	1693	}
1670	#else	1694	#else
1671	static inline void set_section_ro_nx(void *base, unsigned long text_size, unsigned long ro_size, unsigned long total_size) { }	1695	static inline void set_section_ro_nx(void *base, unsigned long text_size, unsigned long ro_size, unsigned long total_size) { }
1672	static inline void unset_section_ro_nx(struct module mod, void module_region) { }	1696	static void unset_module_core_ro_nx(struct module *mod) { }
		1697	static void unset_module_init_ro_nx(struct module *mod) { }
1673	#endif	1698	#endif
1674		1699
1675	/* Free a module, remove from lists, etc. */	1700	/* Free a module, remove from lists, etc. */
@@ -1696,7 +1721,7 @@ static void free_module(struct module *mod)
1696	destroy_params(mod->kp, mod->num_kp);	1721	destroy_params(mod->kp, mod->num_kp);
1697		1722
1698	/* This may be NULL, but that's OK */	1723	/* This may be NULL, but that's OK */
1699	unset_section_ro_nx(mod, mod->module_init);	1724	unset_module_init_ro_nx(mod);
1700	module_free(mod, mod->module_init);	1725	module_free(mod, mod->module_init);
1701	kfree(mod->args);	1726	kfree(mod->args);
1702	percpu_modfree(mod);	1727	percpu_modfree(mod);
@@ -1705,7 +1730,7 @@ static void free_module(struct module *mod)
1705	lockdep_free_key_range(mod->module_core, mod->core_size);	1730	lockdep_free_key_range(mod->module_core, mod->core_size);
1706		1731
1707	/* Finally, free the core (containing the module structure) */	1732	/* Finally, free the core (containing the module structure) */
1708	unset_section_ro_nx(mod, mod->module_core);	1733	unset_module_core_ro_nx(mod);
1709	module_free(mod, mod->module_core);	1734	module_free(mod, mod->module_core);
1710		1735
1711	#ifdef CONFIG_MPU	1736	#ifdef CONFIG_MPU
@@ -2030,11 +2055,8 @@ static const struct kernel_symbol lookup_symbol(const char name,
2030	const struct kernel_symbol *start,	2055	const struct kernel_symbol *start,
2031	const struct kernel_symbol *stop)	2056	const struct kernel_symbol *stop)
2032	{	2057	{
2033	const struct kernel_symbol *ks = start;	2058	return bsearch(name, start, stop - start,
2034	for (; ks < stop; ks++)	2059	sizeof(struct kernel_symbol), cmp_name);
2035	if (strcmp(ks->name, name) == 0)
2036	return ks;
2037	return NULL;
2038	}	2060	}
2039		2061
2040	static int is_exported(const char *name, unsigned long value,	2062	static int is_exported(const char *name, unsigned long value,
@@ -2931,10 +2953,11 @@ SYSCALL_DEFINE3(init_module, void __user *, umod,
2931	mod->symtab = mod->core_symtab;	2953	mod->symtab = mod->core_symtab;
2932	mod->strtab = mod->core_strtab;	2954	mod->strtab = mod->core_strtab;
2933	#endif	2955	#endif
2934	unset_section_ro_nx(mod, mod->module_init);	2956	unset_module_init_ro_nx(mod);
2935	module_free(mod, mod->module_init);	2957	module_free(mod, mod->module_init);
2936	mod->module_init = NULL;	2958	mod->module_init = NULL;
2937	mod->init_size = 0;	2959	mod->init_size = 0;
		2960	mod->init_ro_size = 0;
2938	mod->init_text_size = 0;	2961	mod->init_text_size = 0;
2939	mutex_unlock(&module_mutex);	2962	mutex_unlock(&module_mutex);
2940		2963


diff --git a/kernel/params.c b/kernel/params.c index 7ab388a48a2e..ed72e1330862 100644 --- a/kernel/params.c +++ b/kernel/params.c
@@ -297,21 +297,15 @@ EXPORT_SYMBOL(param_ops_charp);
297	int param_set_bool(const char val, const struct kernel_param kp)	297	int param_set_bool(const char val, const struct kernel_param kp)
298	{	298	{
299	bool v;	299	bool v;
		300	int ret;
300		301
301	/* No equals means "set"... */	302	/* No equals means "set"... */
302	if (!val) val = "1";	303	if (!val) val = "1";
303		304
304	/* One of =[yYnN01] */	305	/* One of =[yYnN01] */
305	switch (val[0]) {	306	ret = strtobool(val, &v);
306	case 'y': case 'Y': case '1':	307	if (ret)
307	v = true;	308	return ret;
308	break;
309	case 'n': case 'N': case '0':
310	v = false;
311	break;
312	default:
313	return -EINVAL;
314	}
315		309
316	if (kp->flags & KPARAM_ISBOOL)	310	if (kp->flags & KPARAM_ISBOOL)
317	(bool )kp->arg = v;	311	(bool )kp->arg = v;
@@ -821,15 +815,18 @@ ssize_t __modver_version_show(struct module_attribute *mattr,
821	return sprintf(buf, "%s\n", vattr->version);	815	return sprintf(buf, "%s\n", vattr->version);
822	}	816	}
823		817
824	extern struct module_version_attribute __start___modver[], __stop___modver[];	818	extern const struct module_version_attribute *__start___modver[];
		819	extern const struct module_version_attribute *__stop___modver[];
825		820
826	static void __init version_sysfs_builtin(void)	821	static void __init version_sysfs_builtin(void)
827	{	822	{
828	const struct module_version_attribute *vattr;	823	const struct module_version_attribute **p;
829	struct module_kobject *mk;	824	struct module_kobject *mk;
830	int err;	825	int err;
831		826
832	for (vattr = __start___modver; vattr < __stop___modver; vattr++) {	827	for (p = __start___modver; p < __stop___modver; p++) {
		828	const struct module_version_attribute vattr = p;
		829
833	mk = locate_module_kobject(vattr->module_name);	830	mk = locate_module_kobject(vattr->module_name);
834	if (mk) {	831	if (mk) {
835	err = sysfs_create_file(&mk->kobj, &vattr->mattr.attr);	832	err = sysfs_create_file(&mk->kobj, &vattr->mattr.attr);


diff --git a/kernel/power/suspend.c b/kernel/power/suspend.c index 8935369d503a..6275970b2189 100644 --- a/kernel/power/suspend.c +++ b/kernel/power/suspend.c
@@ -216,7 +216,6 @@ int suspend_devices_and_enter(suspend_state_t state)
216	goto Close;	216	goto Close;
217	}	217	}
218	suspend_console();	218	suspend_console();
219	pm_restrict_gfp_mask();
220	suspend_test_start();	219	suspend_test_start();
221	error = dpm_suspend_start(PMSG_SUSPEND);	220	error = dpm_suspend_start(PMSG_SUSPEND);
222	if (error) {	221	if (error) {
@@ -233,7 +232,6 @@ int suspend_devices_and_enter(suspend_state_t state)
233	suspend_test_start();	232	suspend_test_start();
234	dpm_resume_end(PMSG_RESUME);	233	dpm_resume_end(PMSG_RESUME);
235	suspend_test_finish("resume devices");	234	suspend_test_finish("resume devices");
236	pm_restore_gfp_mask();
237	resume_console();	235	resume_console();
238	Close:	236	Close:
239	if (suspend_ops->end)	237	if (suspend_ops->end)
@@ -294,7 +292,9 @@ int enter_state(suspend_state_t state)
294	goto Finish;	292	goto Finish;
295		293
296	pr_debug("PM: Entering %s sleep\n", pm_states[state]);	294	pr_debug("PM: Entering %s sleep\n", pm_states[state]);
		295	pm_restrict_gfp_mask();
297	error = suspend_devices_and_enter(state);	296	error = suspend_devices_and_enter(state);
		297	pm_restore_gfp_mask();
298		298
299	Finish:	299	Finish:
300	pr_debug("PM: Finishing wakeup.\n");	300	pr_debug("PM: Finishing wakeup.\n");


diff --git a/kernel/power/user.c b/kernel/power/user.c index c36c3b9e8a84..7d02d33be699 100644 --- a/kernel/power/user.c +++ b/kernel/power/user.c
@@ -135,8 +135,10 @@ static int snapshot_release(struct inode inode, struct file filp)
135	free_basic_memory_bitmaps();	135	free_basic_memory_bitmaps();
136	data = filp->private_data;	136	data = filp->private_data;
137	free_all_swap_pages(data->swap);	137	free_all_swap_pages(data->swap);
138	if (data->frozen)	138	if (data->frozen) {
		139	pm_restore_gfp_mask();
139	thaw_processes();	140	thaw_processes();
		141	}
140	pm_notifier_call_chain(data->mode == O_RDONLY ?	142	pm_notifier_call_chain(data->mode == O_RDONLY ?
141	PM_POST_HIBERNATION : PM_POST_RESTORE);	143	PM_POST_HIBERNATION : PM_POST_RESTORE);
142	atomic_inc(&snapshot_device_available);	144	atomic_inc(&snapshot_device_available);
@@ -379,6 +381,7 @@ static long snapshot_ioctl(struct file *filp, unsigned int cmd,
379	* PM_HIBERNATION_PREPARE	381	* PM_HIBERNATION_PREPARE
380	*/	382	*/
381	error = suspend_devices_and_enter(PM_SUSPEND_MEM);	383	error = suspend_devices_and_enter(PM_SUSPEND_MEM);
		384	data->ready = 0;
382	break;	385	break;
383		386
384	case SNAPSHOT_PLATFORM_SUPPORT:	387	case SNAPSHOT_PLATFORM_SUPPORT:


diff --git a/kernel/time/clocksource.c b/kernel/time/clocksource.c index 6519cf62d9cd..0e17c10f8a9d 100644 --- a/kernel/time/clocksource.c +++ b/kernel/time/clocksource.c
@@ -685,8 +685,8 @@ int __clocksource_register_scale(struct clocksource *cs, u32 scale, u32 freq)
685	/* Add clocksource to the clcoksource list */	685	/* Add clocksource to the clcoksource list */
686	mutex_lock(&clocksource_mutex);	686	mutex_lock(&clocksource_mutex);
687	clocksource_enqueue(cs);	687	clocksource_enqueue(cs);
688	clocksource_select();
689	clocksource_enqueue_watchdog(cs);	688	clocksource_enqueue_watchdog(cs);
		689	clocksource_select();
690	mutex_unlock(&clocksource_mutex);	690	mutex_unlock(&clocksource_mutex);
691	return 0;	691	return 0;
692	}	692	}
@@ -706,8 +706,8 @@ int clocksource_register(struct clocksource *cs)
706		706
707	mutex_lock(&clocksource_mutex);	707	mutex_lock(&clocksource_mutex);
708	clocksource_enqueue(cs);	708	clocksource_enqueue(cs);
709	clocksource_select();
710	clocksource_enqueue_watchdog(cs);	709	clocksource_enqueue_watchdog(cs);
		710	clocksource_select();
711	mutex_unlock(&clocksource_mutex);	711	mutex_unlock(&clocksource_mutex);
712	return 0;	712	return 0;
713	}	713	}


diff --git a/kernel/time/tick-broadcast.c b/kernel/time/tick-broadcast.c index da800ffa810c..723c7637e55a 100644 --- a/kernel/time/tick-broadcast.c +++ b/kernel/time/tick-broadcast.c
@@ -522,10 +522,11 @@ static void tick_broadcast_init_next_event(struct cpumask *mask,
522	*/	522	*/
523	void tick_broadcast_setup_oneshot(struct clock_event_device *bc)	523	void tick_broadcast_setup_oneshot(struct clock_event_device *bc)
524	{	524	{
		525	int cpu = smp_processor_id();
		526
525	/* Set it up only once ! */	527	/* Set it up only once ! */
526	if (bc->event_handler != tick_handle_oneshot_broadcast) {	528	if (bc->event_handler != tick_handle_oneshot_broadcast) {
527	int was_periodic = bc->mode == CLOCK_EVT_MODE_PERIODIC;	529	int was_periodic = bc->mode == CLOCK_EVT_MODE_PERIODIC;
528	int cpu = smp_processor_id();
529		530
530	bc->event_handler = tick_handle_oneshot_broadcast;	531	bc->event_handler = tick_handle_oneshot_broadcast;
531	clockevents_set_mode(bc, CLOCK_EVT_MODE_ONESHOT);	532	clockevents_set_mode(bc, CLOCK_EVT_MODE_ONESHOT);
@@ -551,6 +552,15 @@ void tick_broadcast_setup_oneshot(struct clock_event_device *bc)
551	tick_broadcast_set_event(tick_next_period, 1);	552	tick_broadcast_set_event(tick_next_period, 1);
552	} else	553	} else
553	bc->next_event.tv64 = KTIME_MAX;	554	bc->next_event.tv64 = KTIME_MAX;
		555	} else {
		556	/*
		557	* The first cpu which switches to oneshot mode sets
		558	* the bit for all other cpus which are in the general
		559	* (periodic) broadcast mask. So the bit is set and
		560	* would prevent the first broadcast enter after this
		561	* to program the bc device.
		562	*/
		563	tick_broadcast_clear_oneshot(cpu);
554	}	564	}
555	}	565	}
556		566